CVE-2020-37094

CRITICAL

EspoCRM 5.8.5 - Authentication Bypass via Authorization Header Manipulation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-37094. PoCs published by Besim.

AI-analyzed exploit summary The writeup describes a privilege escalation vulnerability in EspoCRM 5.8.5 where manipulating the 'Authorization' and 'Espo-Authorization' headers allows an attacker to access other users' information. It includes technical details about the API request structure and encoding techniques.

Description

EspoCRM 5.8.5 contains an authentication vulnerability that allows attackers to access other user accounts by manipulating authorization headers. Attackers can decode and modify Basic Authorization and Espo-Authorization tokens to gain unauthorized access to administrative user information and privileges.

Exploits (1)

exploitdb WRITEUP
by Besim · textwebappsmultiple
https://www.exploit-db.com/exploits/48376

The writeup describes a privilege escalation vulnerability in EspoCRM 5.8.5 where manipulating the 'Authorization' and 'Espo-Authorization' headers allows an attacker to access other users' information. It includes technical details about the API request structure and encoding techniques.

Classification
Writeup 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: EspoCRM v5.8.5
Auth required
Prerequisites: Valid user credentials · Access to the API endpoint
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/48376
Various Sources product
https://www.espocrm.com
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/espocrm-privilege-escalation

Scores

CVSS v3 9.8
EPSS 0.0055
EPSS Percentile 41.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-639
Status published
Products (2)
espocrm/espocrm < 5.8.5
EspoCRM/EspoCRM 5.8.5
Published Feb 03, 2026
Tracked Since Feb 18, 2026